Role Overview
As IT Server & Infrastructure Specialist, you will own the full lifecycle of server provisioning, website deployment, CI/CD automation, security hardening, and compliance operations across IQ Hub's global portfolio. You will be the single point of ownership for server health, uptime, and regulatory readiness across our infrastructure — working directly with development, content, and compliance teams to ensure every website is deployed, secured, and performing at standard.
Key Responsibilities
1. Server Provisioning & OS Management
- Provision and configure servers across Ashburn, Nuremberg, and Helsinki data centres
- Install, harden, and maintain Linux operating systems with regular patching and update cycles
- Configure OS-level performance tuning, resource limits, and kernel parameters for high-availability web workloads
2. Coolify Deployment & Website Operations
- Deploy and maintain Coolify as the primary self-hosted PaaS layer for all IQ HUB websites
- Onboard and configure new websites end-to-end, from environment setup through to live HTTP/HTTPS verification
- Manage SSL/TLS certificate provisioning, renewal automation, and domain binding
- Conduct full performance testing for each hosted site — page load, load response, uptime stability, and bottleneck reporting
3. GitHub Enterprise CI/CD Integration
- Connect server infrastructure to the IQ HUB GitHub Enterprise Cloud account, enabling automated CI/CD pipelines via GitHub Actions
- Design, maintain, and optimise deployment workflows for approximately 500 websites per year
- Implement branch protection rules, deployment gates, and rollback procedures
- Coordinate with frontend and backend development teams on pipeline triggers, environment variables, and secrets management
4. Cloudflare Integration & Domain Management
- Integrate Cloudflare on all applicable domains for CDN, DDoS protection, WAF rules, and DNS management
- Manage DNS records, domain propagation, and nameserver configurations across all active websites
- Implement Cloudflare Page Rules, Cache Rules, and Workers where required
- Maintain domain renewal schedules and registrar coordination to prevent expiry incidents
5. Monitoring, Uptime & Incident Response
- Configure and maintain BetterUptime monitoring — 60-second check intervals as standard
- Set up alerting, on-call escalation paths, and incident response runbooks
- Provide 24×7 on-call availability for critical server and infrastructure incidents
- Respond to and resolve production incidents within agreed SLA windows with full post-incident documentation
6. Database Connectivity & Backup
- Manage PostgreSQL connectivity, connection pooling, and credential rotation
- Configure and maintain Backblaze B2 automated daily database dumps with retention policies and restore testing
- Execute server and database migrations with zero-downtime strategies and rollback plans
7. Security Hardening & Firewall Management
- Apply and maintain firewall rules (UFW/iptables) and network segmentation across all servers
- Conduct routine security hardening — SSH key-only access, fail2ban, intrusion detection, port auditing, and vulnerability scanning
- Manage secrets, API keys, and credentials through secure vaulting practices
8. GDPR Compliance & Data Protection
- Ensure EU servers comply with GDPR data residency requirements at the infrastructure level
- Implement and validate Google Consent Mode v2 technical prerequisites on hosted event and marketing websites
- Maintain server-level audit logs and access controls aligned with GDPR Article 32 technical safeguards
- Support GDPR audit responses related to data flows, retention, cross-border transfers, and processor records
9. AI-Assisted Deployment & Automation
- Leverage AI-powered tools (including Claude Code or equivalent) for automated deployment pipelines and infrastructure-as-code generation
- Build and maintain automation scripts for provisioning, health checks, certificate renewals, and backup verification
- Identify and implement opportunities to reduce manual toil through AI-assisted monitoring and incident triage
Educational Background
!
MANDATORY
REQUIRED QUALIFICATION
Degree in Computer Science, Information Technology, Computer Engineering, or a closely related technical discipline
Eligible disciplines include Computer Science, Information Technology, Computer Engineering, Electronics & Communication, or equivalent technical qualifications with demonstrable hands-on infrastructure experience. Candidates from non-technical backgrounds (business, humanities, arts) are not eligible for this position.
Technical Knowledge & Required Skills
Infrastructure & Linux
- 3–6 years of hands-on Linux server administration (Ubuntu/Debian preferred)
- Proven experience with self-hosted PaaS platforms — Coolify, Dokku, CapRover, or Portainer
- Strong proficiency in GitHub Actions CI/CD pipeline design and GitHub Enterprise Cloud administration
Cloud, CDN & DNS
- Cloudflare configuration — DNS, WAF, CDN, DDoS mitigation, Page Rules, and Workers
- Domain management — DNS records, registrars, propagation troubleshooting
- SSL/TLS certificate management — Let's Encrypt, Certbot
Database & Backup
- PostgreSQL administration — connectivity, performance tuning, backup and restore
- Backblaze B2 or equivalent object storage for automated backup workflows
- BetterUptime or comparable monitoring and uptime management platforms
Security & Compliance
- Security hardening — UFW/iptables, fail2ban, SSH hardening, vulnerability scanning
- Demonstrable knowledge of GDPR technical safeguards at the infrastructure level
- Familiarity with Google Consent Mode v2 and cookie compliance infrastructure requirements
AI & Automation
- Hands-on experience using AI-powered DevOps tools — Claude Code, GitHub Copilot, or similar
- Scripting proficiency in Bash and Python for operational automation
- Infrastructure-as-code experience — Terraform, Ansible, or equivalent (advantageous)
Skills & Attributes
- Strong written and verbal communication in English for technical documentation and cross-team coordination
- Ability to work independently, prioritise under pressure, and manage multiple concurrent deployments
- Detail-oriented approach to documentation — runbooks, incident reports, and change logs
- Collaborative mindset when working with frontend/backend developers and compliance stakeholders
- Self-motivated with ability to meet SLA targets and respond to production incidents with urgency
- Adaptable to evolving infrastructure requirements and technology stack changes
What You Get
- Global exposure — own the infrastructure serving conferences and events across 34 cities in 14 countries
- Structured career progression with a clear path from Specialist to Senior Engineer to Infrastructure Lead
- Full ownership of a production-grade, multi-region server topology from day one
- Opportunity to work with AI-powered deployment and automation tooling including Claude Code
- Competitive monthly salary plus performance-linked incentives
- Dynamic, fast-growth environment alongside senior professionals across technology, research, and global events
Growth Path
1
IT Server & Infrastructure Specialist
Year 1–2 — Own full server lifecycle: provisioning, deployments, monitoring, security, and GDPR compliance across all three data centres.
2
Senior Infrastructure Engineer
Year 2–4 — Lead infrastructure architecture decisions, mentor junior team members, and drive automation and AI-assisted deployment initiatives.
3
Infrastructure Lead / DevOps Lead
Year 4–6 — Own the technology infrastructure roadmap, manage vendor relationships, and align infrastructure strategy with IQ HUB's global growth plans.
4
Head of Technology Infrastructure
Year 6+ — Shape IQ HUB's long-term infrastructure strategy across cloud, compliance, and AI-augmented operations at an executive level.
30-Day Onboarding Delivery Checklist
The successful candidate will be expected to execute and sign off the following deliverables within the first 30 days:
#
Deliverable
Status
1
Server provisioning confirmed — Ashburn (USA), Nuremberg (EU Primary), Helsinki (EU Failover), correct region and plan verified
☐ Pending
2
OS installation and full update cycle completed on all three servers
☐ Pending
3
Coolify deployed and all assigned websites operational with environment variables and domain bindings confirmed
☐ Pending
4
Cloudflare integration active on all applicable domains — DNS, WAF, CDN, and SSL configured
☐ Pending
5
BetterUptime monitoring configured for all active sites — 60-second check intervals, alerting and escalation paths set up
☐ Pending
6
PostgreSQL connectivity verified — connection pooling and credentials secured
☐ Pending
7
Backblaze B2 backup configured — automated daily database dumps running with tested restore procedure
☐ Pending
8
Firewall rules applied and security hardening completed — SSH key-only, fail2ban active, port audit documented
☐ Pending
9
Test site deployed and verified — HTTP/HTTPS response confirmation documented for all environments
☐ Pending
10
In-house event website hosted and full performance test completed — report covering page load, load response, uptime stability, and bottlenecks submitted
☐ Pending
Additional Requirements
- Candidates must be able to reliably commute to or relocate to Vadodara, Gujarat before starting work
- 24×7 on-call availability required for critical infrastructure incidents — on-call rotation applies
- Immediate joiners preferred
HOW TO APPLY
Send your CV with a brief note on your infrastructure experience and the projects you have owned to:
Email : [email protected]
Phone +91 9377333411 (please call after 7:30 PM IST only)
Joining Immediate joiners preferred
Job Type: Full-time
Pay: From ₹40,000.00 per month
Language:
Work Location: In person
